Privacy Policy
Last updated: May 26, 2026
This Privacy Policy explains how Etsnaut LLC ("Etsnaut," "Wydefire," "we," "us," or "our"), operator of the Wydefire platform, collects, uses, shares, and protects information when you use our website at wydefire.com and our application (collectively, the "Service"). It includes specific commitments about how we handle data accessed through TikTok and TikTok Shop's official APIs.
Contents
1. Who we are
Wydefire is a creator-commerce orchestration platform for TikTok Shop sellers, operated by Etsnaut LLC, a limited liability company registered in the State of Delaware, USA. We are the data controller for personal information processed through the Service. You can reach us at hello@wydefire.com.
2. Information we collect
2.1 Information you provide
- Account & profile data — name, email, business name, role, password credentials.
- Beta & application data — information submitted through our beta form, such as TikTok Shop URL, monthly GMV range, number of active creators, and product category.
- Billing data — handled by our payment processor; we receive limited transaction metadata, not full card numbers.
- Communications — messages you send to us and content you create in the Service (briefs, outreach drafts, notes).
2.2 TikTok Shop and platform data (accessed with your authorization)
When you connect your TikTok Shop, TikTok for Business, or TikTok account, you authorize us to access certain data through TikTok's official APIs to provide the Service. Depending on the permissions you grant, this may include:
- Shop, product, and order information;
- Affiliate and creator-collaboration data (including Target Collaboration campaigns, affiliate orders, and commission data);
- Creator and audience information available through the APIs (e.g., public profile data, engagement and performance metrics);
- Advertising data such as Spark Ads and GMV Max campaign performance;
- Messages and correspondence exchanged through connected channels where you have authorized access.
2.3 Information collected automatically
- Usage & device data — IP address, browser type, pages viewed, actions taken, timestamps.
- Cookies and similar technologies — see our Cookie Policy.
3. TikTok platform data
We are committed to handling data obtained through TikTok and TikTok Shop's APIs responsibly and in accordance with TikTok's Developer Terms, API Terms of Service, and applicable platform policies. Specifically:
- We access TikTok platform data only through official TikTok APIs and only with the authorization of the relevant shop or account owner. We do not scrape TikTok.
- We use this data solely to provide and improve the features you use — discovery, recruitment, content, relationship management, amplification, and advertising — and not for unrelated purposes.
- We do not sell TikTok platform data, and we do not use it to build identity graphs or independent profiles outside the scope of the Service.
- We delete or de-identify TikTok platform data when you disconnect your account, close your workspace, or request deletion, except where retention is required by law or TikTok policy.
- Aggregated, anonymized format insights (e.g., the Category Viral Template Library) are derived only as permitted and cannot reasonably be used to re-identify any individual, creator, or shop.
4. How we use information
- Provide, operate, and maintain the Service;
- Generate AI-assisted strategy, outreach, content, and recommendations at your direction;
- Authenticate users and secure accounts;
- Process billing and manage subscriptions;
- Provide support and respond to inquiries;
- Analyze and improve the Service;
- Detect, prevent, and address fraud, abuse, and security issues;
- Comply with legal obligations and enforce our terms.
5. AI processing
Wydefire uses artificial intelligence, including large language and vision models provided by third parties such as Anthropic (Claude), to process data you provide or authorize — for example, to generate outreach messages, analyze video formats, and produce recommendations. We send only the data necessary for the requested task, use providers under contractual data-protection commitments, and do not permit your data to be used to train third-party foundation models except where you have explicitly consented. AI output may be imperfect; you remain responsible for reviewing it before use.
6. How we share information
We do not sell your personal information. We share information only:
- With service providers (subprocessors) who help us operate the Service — including cloud hosting (Vercel), AI processing (Anthropic), database and infrastructure providers, payment processors, and analytics — under contracts that require appropriate safeguards;
- At your direction — for example, when we send outreach, briefs, or messages to creators on your behalf;
- For legal reasons — to comply with law, legal process, or enforceable governmental requests, or to protect rights, safety, and security;
- In a business transfer — in connection with a merger, acquisition, or sale of assets, subject to this Policy.
7. Data retention
We retain personal information for as long as your account is active or as needed to provide the Service, then delete or de-identify it within a reasonable period, unless a longer retention period is required by law, needed to resolve disputes, or required to enforce our agreements. TikTok platform data is deleted or de-identified upon disconnection or request as described in Section 3.
8. Security
We implement administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit (TLS) and at rest, access controls and least-privilege permissions, secure credential storage, and monitoring. No method of transmission or storage is completely secure, but we work to protect your data and to promptly address any incident.
9. International transfers
We are based in the United States and process data there. If you access the Service from outside the U.S., you understand your information may be transferred to and processed in the U.S. and other countries. Where required, we rely on appropriate transfer mechanisms such as Standard Contractual Clauses.
10. Your rights
Depending on your location, you may have rights to access, correct, delete, or port your personal information, to object to or restrict certain processing, and to withdraw consent. Residents of California (CCPA/CPRA) and the EU/UK (GDPR) have additional rights, including the right not to be discriminated against for exercising them. To exercise any right, contact us at hello@wydefire.com. We do not sell or "share" personal information for cross-context behavioral advertising as those terms are defined under California law.
11. Cookies
We use cookies and similar technologies as described in our Cookie Policy.
12. Children
The Service is intended for businesses and users aged 18 and older. We do not knowingly collect personal information from children under 18. If you believe a child has provided us information, contact us and we will delete it.
13. Changes to this Policy
We may update this Policy from time to time. We will post the updated version with a new "Last updated" date and, where appropriate, provide additional notice. Continued use of the Service after changes take effect constitutes acceptance.
14. Contact us
Etsnaut LLC
1007 N Orange St, 4th Floor, Ste 1382, Wilmington, DE 19801, USA
Email: hello@wydefire.com